Chainguard Academy

Product Docs

Open Source

- What is SLSA?
- What is the OCI?
- What are OCI Artifacts?

Education

Containers
Selecting a Base Image
Software Supply Chain Security
Chainguard Glossary
Trademark Use Policy
- #1 - Fighting Vulnerabilities

Go to Chainguard.dev

Send feedback Contact

Chainguard Academy

Product Docs

Open Source

- What is SLSA?
- What is the OCI?
- What are OCI Artifacts?

Education

Containers
Selecting a Base Image
Software Supply Chain Security
Chainguard Glossary
Trademark Use Policy
- #1 - Fighting Vulnerabilities

Go to Chainguard.dev

Send feedback Contact

Conceptual

Using Trivy to Scan Software Artifacts

Learn to use Trivy to analyze container images and other software artifacts for a variety of issues

What are OCI Artifacts?

OCI artifacts are a way of using OCI registries, or container registries that are compliant with specifications set by the Open Container Initiative, to store arbitrary files.

How apk-tools is different from other package managers

2
3
4
5
6

Product

Chainguard Images Images Directory

Why Chainguard

Container Image Security Vulnerability Remediation Compliance & Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Open Source Careers Newsroom Legal Contact

Resources

Unchained Blog Research Events Documentation

© 2025 Chainguard. All Rights Reserved.